Lombard Bank
IB Security Guidelines New

Security Guidelines

Lombard Bank Internet Banking Services are simple, convenient and safe to use. You, as our customer and user of the system, play a very important role in ensuring that the Internet Banking system remains safe and secure. To ensure the maximum level of security possible, you can do your part by observing some simple rules.


Care when Logging In

You should always log in to Lombard Internet Banking services by clicking the LOGIN icon on our website at www.lombardmalta.com. Never log in from links in other websites or links in emails that you receive.

Do not use the Internet Banking Service on publicly accessible computers, such as those found in Internet cafes, as there is no way for you to know whether the operating system that you are using is secure enough. Be aware that some computers used in public are not properly protected against malware and there is no way for you to know this. Such malware is capable of recording information from your Internet Banking session without your knowledge, and this information will then be used fraudulently to gain access to your accounts online.

Before using WI FI (wireless connections) to access Lombard Internet Banking Service, ensure that you have adequate security on your computer, especially if you are using a WI FI hotspot in a public area. Your personal data and login information may be compromised unless adequate safeguards are in place.

You should gain access to Lombard Internet Banking Services using Internet Explorer or Firefox.


Digital Certificate

To ensure that you are accessing Lombard Internet Banking Service, check its digital certificate. If you are using Internet Explorer, make sure that the top of your browser contains a green address bar, that there is the locked yellow padlock on the top right side of the address bar, and that there are the words Lombard Bank Malta plc [MT] next to the padlock, as shown in the image below.

If you are using Firefox, make sure there is a green Lombard Bank Malta plc (MT) displayed on the top left hand side, and that there is a locked padlock in the status bar on the bottom right hand side of your Firefox Internet Browser.

If you double-click on the green area, the browser will display certificate details showing that the certificate belongs to Lombard Bank Malta plc (ebank.lombardmalta.com) and shows a valid certificate date.

In the event that a security alert is prompted advising a problem with the site security digital certificate, you must immediately terminate the online session, and report the incident to our Customer Support Services on +00356 2558 1789.

You must NOT use the Lombard Internet Banking Service in a manner that would: deny the use of the service to others, deny the use of any other Bank computer system to others; aid the unauthorised access to Lombard Internet Banking Service or any other Lombard computer system.



Malware refers to computer programs that perform harmful functions to the detriment of the user. These programs usually run silently in the background, and until the damage is done, they will go unnoticed by the user. Malware can take the forms of viruses, worms, Trojan horses, and spyware. Therefore:

  • Do not open any emails that you are not expecting and where the sender is not known to you.  
  • Do not click on any email links which are supposed to connect you to the login page of the Lombard Internet Banking Services.
  • Be careful with all email attachments that you receive.
  • Delete any unsolicited emails immediately and clear these emails from the ‘Deleted’ folder afterwards.

In order to minimise the risks from malware a suitable auto-update anti-virus and anti-spyware should be installed on the system you are using to connect to the Internet Banking Services. You should always be very cautious when surfing the Internet. Some malware can infect your system from the web sites that you visit.


Accessing the Internet Banking Service

To access the Lombard Internet Banking Service, you need to enter your personal Login ID, and a Security Code generated by your security token. The Security Code is a one-time code that is valid for a short period of time. The security token generating the Security Code may be either a hardware token (device provided by the Bank) or a software token (an app downloaded on your mobile phone from Google Play Store or iOS App Store) .Only one token may be used to access the Lombard Internet Banking Service - you will therefore need to opt for either the hardware or the software token.

Hardware Token:

 The hardware token is a handheld device and will be inactive at first; it becomes active after you insert your first PIN code as detailed in the respective instructions booklet. Choose a PIN code that is not easily guessed or identified. The PIN code must be entered every time you switch on your Token. Following that, the Token will generate a 6-digit Security Code which you will need to enter at login stage after you key in your Login ID.

Software Token:

A software token is for use on an Android or iOS mobile device. The software token will become active once you download the Lombard Mobile Token app from Google Play Store or iOS App Store on the mobile phone registered at time of application. You will need to follow the instruction booklet to generate the 6-digit Security Code which you will need to enter at the login stage after you key in your login ID.

The Bank will never contact you to ask you for Login ID and / or PIN code and you must always ignore any emails or phone calls from any person or entity asking for your Login ID and / or PIN code.  It is suggested that you periodically change your PIN code, especially if you suspect that someone may have knowledge of it.

It is also important that you:

  • NEVER record your Login ID number and PIN Code in a manner which makes it easy for any third party to use together with your hardware or software token.
  • NEVER inform anyone of your codes or allow anyone to find out what your codes are.
  • NEVER let anyone see you entering the codes at any time; you must ensure therefore that there are no security cameras, mirrors or any other means that could observe entry of the codes.
  • NEVER leave behind any item that could reveal your codes after you conclude a session on Internet Banking.
  • NEVER open another website and/or access your email when you are using the Internet Banking services.

If you become aware that your hardware token or mobile phone registered for use with the Lombard Mobile Token app has been lost, stolen or mislaid, or if you have forgotten your Login ID or you need to reactivate your PIN code on your mobile, please call your branch immediately or contact our Customer Support Services on +356 2558 1789.

Last Time Visit

As soon as you log in to Internet Banking Services, you will find the date and time of your last login and the number of failed login attempts, if any. You should check that this information tallies with your own actions on the system.



Always click ‘Logout’ when you’ve finished using Internet Banking services, and always close your browser. Never leave your session unattended, as this will prevent others from gaining access to your accounts online.


System Security

It is your responsibility to ensure that the system used for Internet Banking services is secure. To make sure that your system is secure and fully protected:

  • Always use the latest version of your operating system.
  • Never run and/or install programs from unknown sources.
  • Use a suitable auto-update anti-virus and anti-spyware.
  • Use a personal firewall.
  • Prevent the browser from storing (caching) the pages that you view by using the enhanced security features of the browser. If you allow the browser to cache to improve performance, erase this cache when you complete your session on Internet Banking.


Accounts and Bank Statements

Check your accounts and bank statements regularly to ensure that all transactions have been authorised by you and that there are no unexplained transactions.